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Amendments to the Claims : 

The following listing of claims will replace all prior versions, and listings, of claims in 
the application: 

1 . (Currently Amended) A data storage device provided with a function for 
authenticating a user*s access right, which verifies legitimacy of proof data generated for 
proving a right of an application program to access data stored in a storage medium, to 
thereby authenticate the access right of a user of the application program to the data, the data 
storage device comprising: 

first storage means for storing authentication data; 

second storage means for storing user unique identifying information of the user 
of the application program; 

third storage means for storing auxiliary proof information being a result in 
which a specific calculation is executed to the user unique identifying information of the 
application program and unique security characteristic information; 

proof data generation means for executing a specific calculation to the 
authentication data stored in the first storage means, the user unique identifying information 
of the application program stored in the second storage means, and the auxiliary proof 
information stored in the third storage means, to thereby generate proof data; 

a data storage main fi-ame provided with a rthe storage medium, which stores 
and preserves data in the storage medium; 

command generation means installed in the application program, for 
generating a command that instructs an operation to the data stored in the storage medium of 
the data storage main frame; 
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command issuing means installed in the application program, for issuing the 
command generated by the command generation means to the outside of the application 
program; 

proof data verification means for verifying that the proof data generated by the 
proof data generation means has been generated on the basis of the unique security 
characteristic information; and 

command management means for permitting to execute the conraiand only 
when the verification is successful, as to at least one type of the command that instructs the 
operation to the data stored in the data storage main frame; 

wherein the command is at least one of reading, writing, and erasing the data 

stored within the storage medium . 

2. (Original) A data storage device provided with a function for authenticating a 
user's access right according to Claim 1, wherein at least the second storage means and the 
proof data generation means are retained in protection means for making it difficult to 
observe the inner data and processing procedures from the outside. 

3. (Currently Amended) A data storage device provided with a function for 
authenticating a user's access right according to Claim 1 , wherein at least the second storage 
means and the proof data generation means are configured in a small portable processor-sueh 
as an IC card . 

4. (Original) A data storage device provided with a function for authenticating a 
user's access right according to Claim 1, wherein the proof data generation means includes first 
calculation means and second calculation means, in which the first calculation means 
executes a specific calculation to the user unique identifying information of the application 
program stored in the second storage means and the auxiliary proof information stored in the 
third storage means to produce the unique security characteristic information as a result of the 
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calculation, and the second calculation means executes a specific calculation to the 
authentication data stored in the first storage means and the unique security characteristic 
information calculated by the first calculation means to generate the proof data as a result of 
the calculation. 

5. (Original) A data storage device provided with a function for authenticating a 
user's access right according to Claim 1, wherein the proof data generation means includes 
third calculation means, fourth calculation means, and fifth calculation means, in which the 
third calculation means executes a specific calculation to the authentication data stored in the 
first storage means and the auxiliary proof information stored in the third storage means, the 
fourth calculation means executes a specific calculation to the authentication data stored in 
the first storage means and the user unique identifying information of the application program 
stored in the second storage means, and the fifth calculation means executes a specific 
calculation to a calculation result by the third calculation means and a calculation result by 
the fourth calculation means, to generate the proof data as a result of the calculation. 

6. (Original) A data storage device provided with a function for authenticating a 
user's access right according to Claim 5, wherein at least the second storage means and the 
fourth calculation means are retained in protection means for making it difficult to observe 
the inner data and processing procedures from the outside. 

7. (Currently Amended) A data storage device provided with a function for 
authenticating a user's access right according to Claim 5, wherein at least the second storage 
means and the fourth calculation means are configured in a small portable processo r such as 
an IC card . 

8. (Original) A data storage device provided with a function for authenticating a 
user's access right according to Claim 1 , wherein the unique security characteristic 
information is a decryption key in an encryption function, the authentication data is 
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appropriate data encrypted by using an encryption key corresponding to the decryption key, 
and the proof data verification means verifies that the proof data generated by the proof data 
generation means is identical to the correct decryption of the authentication data. 

9. (Original) A data storage device provided with a function for authenticating a 
user*s access right according to Claim 1, wherein the unique security characteristic 
information is an encryption key in an encryption function, and the proof data generated by 
the proof data generation means is verified to be the authentication data correctly encrypted 
by using the encryption key. 

1 0. (Original) A data storage device provided with a function for authenticating a 
user's access right according to Claim 1, wherein the unique security characteristic 
information is a signature key in a digital signature function, and the proof data generated by 
the proof data generation means is verified to be a digital signature to the authentication data 
generated by using the signature key. 

1 1 . (Original) A data storage device provided with a function for authenticating a 
user's access right according to Claim 8, wherein the encryption function is an asymmetric 
encryption function, and the unique security characteristic information is a key on one side. 

12. (Original) A data storage device provided with a function for authenticating a 
user's access right according to Claim 1 1 , wherein the encryption function is a pubUc key 
encryption function, and the unique security characteristic information is a private key. 

13. (Original) A data storage device provided with a function for authenticating a 
user's access right according to Claim 8, wherein the encryption function is a symmetric 
encryption function, and the unique security characteristic information is a common secret 
key. 

14. (Currently Amended) A data storage device provided with a function for 
authenticating a user's access right according to Claim L A data storag e d e vic e provid e d with 
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a function for auth e nticating right of th e us e r of an application program to acc e ss data , 
through mutual communication between a rthe proof data generation device including the first 
storage means, the second storage means, the third storage means, and the proof data 
generation means, and ar -the p roof data verification device including, in addition to the proof 
data verification means, fourth storage means for storing the authentication data and fifth 
storage means for storing the proof data, according to Claim 1 , wherein the proof data 
verification device writes the authentication data stored in the fourth storage means into the 
first storage means of the proof data generation device, the proof data generation device 
writes the proof data generated on the basis of the authentication data written into the first 
storage means by the proof data generation means into the fifth storage means of the proof data 
verification device, and the proof data verification device authenticates the user's access right 
by using the proof data written into the fifth storage means. 

15. (Original) A data storage device provided with a function for authenticating a 
user's access right according to Claim 14, wherein the unique security characteristic 
information is an encryption key in an encryption function, the proof data verification device 
includes random number generation means, the random number generation means writes a 
random generated number into the fourth storage means as the authentication data, and the 
proof data verification means verifies the proof data written into the fifth storage means by 
the proof data generation device to be the encryption of the random number being the 
authentication data using encryption key being the unique security characteristic information. 

16. (Original) A data storage device provided with a function for authenticating a 
user's access right according to Claim 14, wherein the unique security characteristic 
information is a decryption key in an encryption function, the proof data verification device 
includes random number generation means, sixth storage means for storing a generated 
random number, and seventh storage means for storing a seed for authentication data, the 
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random number generation means writes a generated random number into the sixth storage 
means, randomizes the seed for authentication data stored in the seventh storage means by 
using the random number, and thereafter writes the resuh of the randomization as the 
authentication data into the fourth storage means, and the proof data verification means 
verifies the result with the random number effect by the random number stored in the sixth 
storage means removed from the proof data written into the fifth storage means to be identical 
to the decryption of the seed for authentication data stored in the seventh storage means by the 
decryption key being the unique security characteristic information. 

17. (Original) A data storage device provided with a fimction for authenticating a 
user's access right according to Claim 14, wherein the unique security characteristic 
information is a signature key in a digital signature fijnction, the proof data verification 
device includes random number generation means, the random number generation means 
writes a generated random number into the fourth storage means as the authentication data, 
and the proof data verification means verifies the proof data written into the fifth storage 
means by the proof data generation device to be a digital signature to the authentication data 
being the random number by the signature key being the unique security characteristic 
information. 

18. (Original) A data storage device provided with a fiinction for authenticating a 
user's access right according to Claim 15, wherein the encryption fiinction is of the RSA 
public key crypto-system using a modulus n, the unique security characteristic information is 
a private key D, a public key corresponding to the private key D is E, and the proof data 
verification means verifies E power of proof data R written into the fifth storage means to be 
congruent with an authentication data C stored in the fourth storage means, modulo n (R^ mod 
n = C mod n). 
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19. (Original) A data storage device provided with a function for authenticating a 
user's access right according to Claim 16, v^herein the encryption function is of the RSA public 
key crypto-system using a modulus n, the unique security characteristic information is a 
private key D, a public key corresponding to the private key D is E, the seed for 
authentication data stored in the seventh storage means is a number K' being E powder of a 
data K modulo n (K' = mod n), the random number generation means vmtes a number C 
being E power of a random number r modulo n multiplied by the number K* modulo n (C = 
r^K' mod n) into the fourth storage means as the authentication data, and the proof data 
verification means verifies a reverse modulo n of the random number r stored in the sixth 
storage means multiplied by proof data R written into the fifth storage means to be congruent 
with the data K modulo n (K mod n = r'^R mod n). 

20. (Currently Amended) A data storage device provided with a function for 
authenticating a user's access right according to Claim 18, wherein the encryption function is of 
the RSA public key crypto- Gust e m system using a modulus n, the unique security 
characteristic information is the private key D, the public key corresponding to the private key 
D is E, auxiliary proof information t stored in the third storage means is data obtained by 
subtracting user unique identifying information e of the application program stored in the 
second storage means from the private key D, and adding a product of a value of a non-collision 
function co (= G(n, e)) dependent on the modulus n and the user unique identifying 
information e, and an Eulerian number ^(n) (t = D - e + co(t)(n)), and the proof data generation 
means generates the proof data by calculating D power of C modulo n (C^ mod n), from the t, 
the e, and the authentication data C stored in the first storage means. 

21. (Original) A data storage device provided with a function for authenticating a 
user's access right according to Claim 20, wherein the proof data generation means includes 
third calculation means, fourth calculation means, and fifth calculation means, the third 
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calculation means calculates the t power of the C modulo n (C^ mod n), the fourth calculation 

means calculates the e power of the C modulo n (C^ mod n), and the fifth calculation means 
multiplies a result of the calculation by the first calculation means by that of the calculation 
by the second calculation means modulo n to thereby generate the proof data R (=C^C^ mod 
n). 

22. (Original) A data storage device provided with a function for authenticating a 
user's access right according to Claim 21, wherein the second storage means and the fourth 
calculation means are built in protection means for protecting the inner processing procedures 
and data from outside observation. 

23. (Original) A data storage device provided with a function for authenticating a 
user's access right according to Claim 18, wherein the encryption function is of the RSA 
public key crypto-system using a modulus n, the unique security characteristic information is 
the private key D, the public key corresponding to the private key D is E, auxiliary proof 
information t stored in the third storage means is data obtained by adding to the D a value of a 
non-collision function F(n, e) which is dependent on the modulus n and user unique 
identifying information e of the application program stored in the second storage means (t = 
D + F(n, e)), and the proof data generation means generates the proof data by calculating D 
power of C modulo n (C° mod n), from the t, the e, and the authentication data C stored in the 
first storage means. 

24. (Original) A data storage device provided with a function for authenticating a 
user's access right according to Claim 23, wherein the proof data generation means includes 
third calculation means, fourth calculation means, and fifth calculation means, the third 
calculation means calculates the t power of the C modulo n (C* mod n), the fourth calculation 
means calculates the F(n, e) power of the C modulo n (C*"^"' mode n, and the fifth calculation 
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means multiplies a result of the calculation by the third calculation means by the reverse of a 
calculation result by the fourth calculation means modulo n to thereby generate the proof data 
R(=C'C^^"'^^modn). 

25. (Original) A data storage device provided with a function for authenticating a 
usefs access right according to Claim 24, wherein the second storage means and the fourth 
calculation means are built in protection means for protecting the inner processing procedures 
iand data jfrom outside observation. 

26. (Original) A data storage device provided with a function for authenticating a 
user's access right according to Claim 15, wherein the encryption function is of the Pohlig- 
Hellman asymmetric crypto-system using a modulus p, the unique security characteristic 
information is a key D on one side, a key on the other side corresponding to the key D is E 
(DE mod p-1 = 1), and the proof data verification means verifies E power of proof data R 
written into the fifth storage means to be congruent with authentication data C stored in the 
fourth storage means, modulo p (R^ mod p = C mod p). 

27. (Original) A data storage device provided with a function for authenticating a 
user's access right according to Claim 16, wherein the encryption function is of the Pohlig- 
Hellman asymmetric crypto-system using a modulus p, the imique security characteristic 
information is a key D on one side, a key on the other side corresponding to the key D is E 
(DE mod p-1 = 1), the seed for authentication data stored in the seventh storage means is a 
number K' being E power of a data K modulo p (K* = mod p), the random number 
generation means writes a number C that is identical to E power of a random number r 
modulo p multiplied by the number K* modulo p (C = r^K* mod p) into the fourth storage 
means as the authentication data, and the proof data verification means verifies a reverse 
modulo p of the random number r stored in the sixth storage means multiplied by the proof 



-10- 



Application No. 09/656,3 1 5 

data R written into the fifth storage means to be congruent with the data K modulo p ( K mod 
p = R'^Rmodp). 

28. (Original) A data storage device provided with a function for authenticating a 
user*s access right according to Claim 26, wherein the encryption function is of the Pohlig- 
Hellman asymmetric crypto-system using a modulus p, the unique security characteristic 
information is a key D on one side, a key on the other side corresponding to the key D is E 
(DE mod p-1 = 1), auxiliary proof information t stored in the third storage means is data 
obtained by adding to the D a value of a non-collision function F(p, e) which is dependent on 
the modulus p and user unique identifying information e of the application program stored in 
the second storage means (t = D + F(p, e)), and the proof data generation means generates the 
proof data by calculating D power of C modulo p (C^ mod p), from the t, the e, and the 
authentication data C stored in the first storage means. 

29. (Original) A data storage device provided with a function for authenticating a 
user's access right according to Claim 28, wherein the proof data generation means includes 
third calculation means, fourth calculation means, and fifth calculation means, the third 
calculation means calculates the t power of the C modulo p (C* mod p), the fourth calculation 
means calculates the F(p, e) power of the C modulo p (C*"^^' mod p), and the fiflh calculation 
means multiplies a result of the calculation by the third calculation means by the reverse of a 
calculation result by the fourth calculation means modulo p to thereby generate the proof data 
R(=C'C-''^P''^modp). 

30. (Original) A data storage device provided with a function for authenticating a 
user's access right according to Claim 29, wherein the second storage means and the fourth 
calculation means are built in protection means for protecting the inner calculation procedures 
and data from outside observation. 
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31. (Original) A data storage device provided with a function for authenticating a 
user's access right according to Claim 16, wherein, when the encryption function is of the 
ElGamal public key crypto-system using a modulus p of the ElGamal public key crypto- 
system using a modulus p and a generator a, the unique security characteristic information is a 
private key X, a public key corresponding to the key X is Y (Y = a^ mod p), u is a number that 
the a is exponentiated by an appropriate random number z as an exponent modulo p (u = a^ 
mod p), and K' is a product of data K and the Y exponentiated by the random number z modulo 
p (K' = Y^K mod p), a combination of the u and the K' is stored in the seventh storage means 
as the seed for authentication data, the random number generation means writes the u and a 
number C that results from a random number r multiplied by the number K' modulo p (C = 
rK* mod p) into the fouri^h storage means as the authentication data, and the proof data 
verification means verifies a reverse modulo p of the random number r stored in the sixth 
storage means multiplied by proof data R written into the fifth storage means to be congruent 
with the data K modulo p (K mod p = r"^R mod p). 

32. (Original) A data storage device provided with a function for authenticating a 
user's access right according to Claim 31, wherein, when the encryption function is of the 
ElGamal public key crypto-system using a modulus p and a generator a, the unique security 
characteristic information is a key X on one side, a public key corresponding to the key X is 
Y (Y = a^ mod p), auxiliary proof information t stored in the third storage means is data 
obtained by adding to the X a value of a non-collision function F(p, e) which is dependent on 
the modulus p and user unique identifying information e of the application program stored in 
the second storage means (t = X + F(p, e)), and the proof data generation means generates the 
proof data by calculating C divided by X power of the u modulo p (Cu" mod p), from the t, 
the e, and the authentication data u and C stored in the first storage means. 
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33. (Original) A data storage device provided with a function for authenticating a 
user's access right according to Claim 32, wherein the proof data generation means includes 
third calculation means, fourth calculation means, and fifth calculation means, the third 
calculation means calculates the t power of the u modulo p (u* mod p), the fourth calculation 
means calculates the F(p, e) power of the u modulo p (u^^^' mod p), and the fifth calculation 
means divides the C by a calculation result of the third calculation means modulo p and 
multiplies a calculation result of the fourth calculation means to thereby generate the proof 
data R (=Cu"' u^^P' mod p). 

34. (Original) A data storage device provided with a function for authenticating a 
user*s access right according to Claim 33, wherein the second storage means and the fourth 
calculation means are built in protection means for protecting the inner calculation procedures 
and data from outside observation. 

35. (Original) A data storage device provided with a function for authenticating a 
user's access right according to Claim 17, wherein the digital signature function is of the 
ElGamal sgnature scheme using the modulus p and a generator a, the unique security 
characteristic information is a signature key X, a public key corresponding to the key X is Y 
(Y = a^ mod p), and the proof data verification means verifies, in regard to a proof data R and 
S, a value being the a exponentiated by authentication data C as an exponent stored in the 
fourth storage means, modulo p to be congruent with a product of the R power of the Y and 
the S power of the R, modulo p (a*^ mod p = Y*^R^ mod p). 

36. (Original) A data storage device provided with a function for authenticating a 
user's access right according to Claim 35, wherein the digital signature function is the E 1 
Gamal signature under the modulus p and a generator a, the unique security characteristic 
information is the signature key X, the public key corresponding to the key X is Y (Y = a 
mod p), auxiliary proof information t stored in the third storage means is data obtained by 
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adding to the X a value of a non-collision function F(p, e) which is dependent on the modulus 
p and a user unique identifying information e of the application program stored in the second 
storage means (t = X + F(p, e)), and the proof data generation means generates an appropriate 
random number k in generating the proof data R and S, adopts the k power of the a modulo p 
as the R (= a'^ mod p), subtracts a product of the X and the R from the C modulo p-1 and 
multiplies the calculation result with a reverse of the k, from the t, the e, and the 
authentication data C written into the first storage means, and thereby calculates the S (= (C- 
RX)k"^ mod p-1). 

37. (Original) A data storage device provided with a function for authenticating a 
user's access right according to Claim 36, wherein the second storage means and the proof data 
generation means are built in protection means for protecting the inner calculation procedures 
and data from outside observation. 

38. (Original) A data storage device provided with a function for authenticating a 
user's access right according to Claim 4, wherein the user unique identifying information of 
the application program is a decryption key of an encryption function, the auxiliary proof 
information is the unique security characteristic information encrypted by an encryption key 
corresponding to the decryption key, and the first calculation means decrypts the auxiliary 
proof information by using the decryption key being the user unique identifying information of 
the application program to thereby calculate the unique security characteristic information. 

39. (Original) A data storage device provided with a function for authenticating a 
user's access right according to Claim 38, wherein the encryption function is an asymmetric 
key encryption function, and the user unique identifying information of the application 
program is a key on one side. 

40. (Original) A data storage device provided with a function for authenticating a 
user's access right according to Claim 39, wherein the encryption function is a public key 
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encryption function, and the user unique identifying information of the apphcation program is 
a private key, 

41 . (Original) A data storage device provided with a function for authenticating a 
user's access right according to Claim 38, wherein the encryption function is a symmetric key 
encryption function, and the user unique identifying information of the application program is 
a common secret key. 

42. (Original) A data storage device provided with a function for authenticating a 
user's access right according to Claim 8, wherein the proof data verification means includes 
eighth storage means for storing clear text data corresponding to the authentication data or the 
seed for authentication data being encrypted data and comparison means, and the comparison 
means compares the proof data generated by the proof data generation means or a result 
having the random number effect removed from the proof data with the clear text data stored 
in the eighth storage means, and only when both are identical, judges the proof data to be 
legitimate. 

43. (Original) A data storage device provided with a function for authenticating a 
user's access right according to Claim 8, wherein the proof data verification means includes 
ninth storage means for storing a result having a specific one-way function applied to clear 
text data corresponding to the authentication data or the seed for authentication data being 
encrypted data, sixth calculation means, and comparison means, the sixth calculation means 
applies the one-way function to the proof data generated by the proof data generation means 
after derandomizing if necessary, and the comparison means compares a calculation result by 
the sixth calculation means with data stored in the ninth storage means, and only when both 
are identical, judges the proof data to be legitimate. 

44. (Original) A data storage device provided with a function for authenticating a 
user's access right according to Claim 8, wherein the proof data verification means includes 
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program execution means, the authentication data or the seed for authentication data is data 
obtained by encrypting a program, the proof data verification means passes, after 
derandomizing if necessary, the proof data generated by the proof data generation means to 
the program execution means as a program, whereby the program execution means executes a 
correct operation, when the proof data generation means correctly decrypts the authentication 
data or the seed for authentication data being an encrypted program, namely, only when the 
encrypted program is correctly decrypted. 

45. (Original) A data storage device provided with a function for authenticating a 
user's access right according to Claim 8, wherein the proof data verification means includes 
program execution means, program storage means, and program decryption means, a program 
stored in the program storage means is encrypted to a part or whole thereof, the authentication 
data or the seed for authentication data is data obtained by separately encrypting a decryption 
key for decrypting the encrypted program, the proof data verification means passes the proof 
data generated by the proof data generation means to the program decryption means, the 
program decryption means uses, after derandomizing if necessary, the proof data generated by 
the proof data generation means as a decryption key to thereby decrypt a necessary part of the 
program stored in the program storage means, the program execution means executes the 
decrypted program, whereby, when the proof data generation means correctly decrypts the 
authentication data or the seed for authentication data, namely, only when the decryption key 
for decrypting the encrypted program is correctly decrypted, the program execution means 
executes a correct operation. 

46. (Original) A data storage device provided with a function for authenticating a 
user's access right according to Claim 14, wherein the proof data generation device and the 
proof data verification device are installed in one enclosure, and the proof data generation 
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device and the proof data verification device communicate with each other without using a 
communication medium outside the enclosure. 

47. (Currently Amended) A data storage device provided with a function for 
authenticating a user's access right, which verifies legitimacy of proof data generated for 
proving right of an application program to access data, stored in a storage medium, to thereby 
authenticate the access right of a user of the application program to the data, the data storage 
device comprising: 

first storage means for storing authentication data; 

second storage means for storing user unique identifying information of the 
application program; 

third storage means for storing auxiliary proof information being a result in 
which a specific calculation is executed to the user unique identifying information of the 
application program and unique security characteristic information; 

proof data generation means for executing a specific calculation to the 
authentication data stored in the first means and the user unique identifying information of the 
application program stored in the second storage means, to thereby generate proof data; 

a data storage main frame provided with a storage medium, which stores and 
preserves data in the storage medium; 

command generation means installed in the application program, for 
generating a command that instructs an operation to the data stored in the storage medium of 
the data storage main fi-ame; 

command issuing means installed in the application program, for issuing a 
command generated by the command generation means to the outside of the application 
program; 
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proof data verification means including calculation means for applying a 
specific calculation to the proof data generated by the proof data generation means and the 
auxiliary proof „information held in the third storage means, which verifies the proof data to 
be generated on the basis of the user unique identifying information of the application 
program, by using a calculation result by the calculation means; and 

command management means for permitting to execute the command only 
when the verification is successfiil, as to at least one type of the command that instructs the 
operation to the data stored in the data storage main fi-ame; 

wherein the command is at least one of reading, writing, and erasing the data 

stored within the storage medimn . 

48. (Original) A data storage device provided with a fimction for authenticating a 
user's access right according to Claim 1, wherein the storage medium of the data storage device 
is a write once optical storage medium. 

49. (Original) A data storage device provided with a fimction for authenticating a 
user's access right according to Claim 48, wherein the write once optical storage medium of the 
data storage device is a phase change type optical storage medium. 

50. (Original) A data storage device provided witii a fimction for authenticating a 
user's access right according to Claim 48, wherein the write once optical storage mediimi of the 
data storage device is a phase separation type optical storage medium. 

51. (Original) A data storage device provided with a fimction for authenticating a 
user's access right according to Claim 1, wherein the storage medium that first stores at least a 
specific access log, of the storage medium of the data storage device, is a write once optical 
storage medium. 

52. (Original) A data storage device, comprising a write once optical storage 
medium that is used for a part that first stores a specific access log as auxiliary storage means. 
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